It is a classic urban legend horror scene - a young woman is home alone (she is usually a babysitter). She receives creepy phone calls asking "Have you checked the kids?" The babysitter calls the police and the police set up watch outside the house to keep the babysitter safe. The police trace the phone calls and to their horror, they discover that the calls are not coming from another location, but they are coming from inside the house.

It is a classic urban legend horror scene - a young woman is home alone (she is usually a babysitter). She receives creepy phone calls asking "Have you checked the kids?" The babysitter calls the police and the police set up watch outside the house to keep the babysitter safe. The police trace the phone calls and to their horror, they discover that the calls are not coming from another location, but they are coming from inside the house.

In my last video blog on KRACK attack, I explained the technical details of workings and countermeasures for 9 out of 10 CVEs. The one I did not discuss in detail was CVE-2017-13088. At the time there wasn't enough information available on it and though it looked like the twin of CVE-2017-13087, due to differences between how group keys are distributed in MFP mode versus non-MFP mode, it required separate consideration. After receiving more details from the researcher (@vanhoefm), I am prepared to share information about CVE-2017-13088 and the appropriate countermeasures.

Johnny is excited - well, not really - because tomorrow is state-wide, academic-testing day at his school. For weeks now, his teachers have told him just how important this day is for him and his school. Even his parents were instructed on how they can help prepare Johnny for the big day: ensure he gets enough sleep, has a quality breakfast, and arrives to school on-time. Johnny isn’t thrilled by this extra attention.

Researchers from the University of Leuven (@vanhoefm and team) have discovered flaws in WPA2 implementation in clients and APs. These flaws create vulnerabilities for replay and decryption attacks on packets transferred over WiFi links. They have named them KRACKs (Key Reinstallation AttaCKs). Both 802.1x (EAP) and PSK (password) based networks are affected. These vulnerabilities have been cataloged under 10 CVEs. In the series of videos below, I explain these CVEs in detail with Vivek Ramachandran, Founder and CEO of Pentester Academy.

Security is top of mind for IT teams, business leaders, and the general public. News of attacks, ransomware, and data breaches has become commonplace; most recently Equifax and Yahoo. Have you stopped to ask yourself: Is my WLAN secure? Have I done all that I can to ensure is it secure?

You can tell how long someone has been troubleshooting networks by the length of their arms. Orangutans like me have been doing it a long, long time. I started with a sewing machine sized Network General luggable that I carried around the world. Now I have to stand up very straight to keep my knuckles from dragging on the ground.

Mojo’s Cognitive WiFi platform - Aware, saves network engineers from having to have shirts specially made because it includes Auto Packet Capture.

The power of Mojo APIs can be harnessed to build a variety of useful applications. One such application is an Alexa skill that can provide a voice interface for Mojo Cognitive WiFi. In this example I show how to build an Alexa skill that runs a live client connectivity test for any of your network locations and then tells you the results. This example uses the Alexa skills kit API and the Mojo’s RESTful APIs.

Merseyrail is one of the most punctual and reliable railway networks in the UK, running 800 trains and carrying over 100,000 passengers daily. Merseyrail is currently 14 years into a 25-year concession managed by local transport authority, Merseytravel. Concession reviews are undertaken every five years, and it was between two review dates that Kevin Lindsay, Business Systems Support Analyst for Merseyrail became aware of the spike in passenger demand for WiFi access and recognized that something had to be done.